Get ready, now Microsoft DirectX Installer is being detected. (admin installed the .exe detected and comfirmed it installed Microsoft DirectX). Today's latest defs (1-29-2010) are now hitting the standalone Microsoft DirectX installer .exe files. Have no idea what version and don't have time to find out (it's coming from an offsite location also dealing with the Flash false positives)
Symantec- I thought you QC'd your defs before releasing??? I'd hate to be using Rapid Release defs because if your QC'd defs are starting to be this bad (this seems like a new trend), I feel sorry for those that are using Rapid Release. Unfortunately, I don't have time chasing all these false positives and submitting. (too busy responding to all the alerts from the field on the flash detections)
Symantec Antivirus is now acting like a virus itself deleting/quarantining legitimate files if you think about it.
First the Dec 31, 2009 def issues, now this. I realize there's a lot that goes on in definition creation but I would think that such common software like Flash and DirectX wouldn't make it past QC. When you have networks of 20,000 systems + it's a real pain to deal with. Please relook your QC process. Last thing I want to do is push out Rapid Release defs for something that's not even a threat (if your current QC'd defs catch legit software, I can't imagine what today's Rapid release defs would do). We only would use Rapid release in the event of a rapidly progressing threat. This is just an annoyance, thank goodness.
If you add up the manhour costs these mistakes are costing companies world wide, you're definatelly in the millions of $$$$. And now legit threats are being intermingled with false positives of legit popular software. Our jobs are time consuming enough to have to worry about this now. I hope this is just a temp problem (ie. new guy working on the def creation team) and not something we can expect more of.
Sorry for the rant but I'm sure you understand the fustration. Now back to work responding to scared users and system admins asking about the flash and directx detections....